Tracking IP address
-
How is it done? Can anyone enlighten me?
-
i am a 7th level clone
{
even my masters don't know who i am
There is a suspicious character who calls himself Inflammable and boasts about being untraceable. Prove him wrong. -
I not very good, just know basics lah.
just check from company firewall log can le. All they can see is IP address to and from only.
From there how they trace is depend on how they assign the IP to each computer is it physically assigned or is it thru DHCP.
If physically assigned of course can trace down to department and individual PC level lah. Of course can overcome this, First remember your own IP address, then after hours just grab anybody's to use and surf internet with it but remember to change back.
If DHCP means everytime you turn on your PC it grabs an IP from a pool of unused IP addresses maintained by a DHCP server. Today it may be this IP tomorrow maybe that, I dunno whether DHCP can trace or not, but so far never kanna caught leh
From outside www want to trace back to the source maybe check singnet or pacnet IP firewall logs lor. But if you surf out from using your company network, depending if your network admin kilat or not, if kilat admin normally they will configure out going IP traffic from company firewall will "hide" behind a fake IP, if buay heow administrator basically means die lah -
Pls see my sig
-
Of course there are other ways to track IP address and there are many sophisticated softwares out there today that can do it.
another crude way is to hook up a notebook at the ISP just before the packet is being encrypted and do a 'snoop -dhme0 ' which shows you a short summary of what was being typed like maybe a portion of password in vertical format if you happened to be snooping on someone and he just logged on. The way to overcome this "snooping" is to install a 512k or 1024bit SSL cert which you need to buy and renewable annually.
But the easiest most unethical way and illegal is to install a trojan software which captures logon names and passwords on the logon page. One way to detect if a trojan is used is that upon logging in it prompts you again for another password, the first logon actually captures everything and logs to a file then the program ends and exits, the second logon is the real logon software which gives the access.
But it is very difficult to detect and overcome such software being used. For one people tends to overlook it often, by habit and 'common sense' that we sometimes make typo mistakes people frequently assume that to be the case and not suspect malicious software being used. Secondly even if you discovered a trojan was used it is the "Aftermath"
But of course the site that uses such things and found out will earn eternal distrust of it's users.
-
I like to see you track each individual IP from a network with a 10 port switch and a 8 port router.
-
Firstly if we connect from home we are all going thru ISP or connect from company network. On Sgforums server all incoming packets from ISP are probably encrypted and masked with fake IP use to thwart potential troublemakers. Unless it's garmen ppl then of course they have the ways and means to do it from ISP. If they cannot even track their own IP address to search for somebody then Lee Hsien Yang ought to sack somebody in singnet for incompetence.Originally posted by ditzy:I like to see you track each individual IP from a network with a 10 port switch and a 8 port router.
Secondly If I was very bad ger and wanted to track kumsiojui, first of all I will put up a trojan software, anybody who logs on will get captured by this software, but if kumsiojui never logs in that day bad ger lan lan, or if kumsiojui actually made a real typo in password on the trojan then bad ger lan lan.
Or easier still, bad ger is the sys admin on sgforums infatuated with kumsiojui, I would cut and paste his encrypted password to a file as backup then reset it and logon just to find his "email" and put back the encrypted password, so that I once I have his email can send love letters or hate mail to him.
but that would make kumsiojui hate bad ger very badly.
-
Bad ger says she don't give a damn about kumsiojui.
-
isp encrypt packets with ssl and put fake ip address?
-
the proper term should be called masking hor.. anyone?
-
What if you do a spoof on the packet before it reaches the ISP..Originally posted by YI:the proper term should be called masking hor.. anyone? -
like they say.. no network can be entirely secure not to mention the internet. we are totally at the mercy of our isp in maintaining their network integrity.Originally posted by LazerLordz:What if you do a spoof on the packet before it reaches the ISP.. -
anyway, don't think there are many people in singapore with the know-how on packet sniffing and ip spoofing. singaporeans as a whole are generally incapable of protecting their computer from simple tricks such as trojan, trap door or even worms. some don't even bother to configure their network file system.
-
nt masking...encapsulation would be appropriate in most type of connections.Originally posted by YI:the proper term should be called masking hor.. anyone? -
okay. got your point and i agreed with it.Originally posted by kaobeikaobu:nt masking...encapsulation would be appropriate in most type of connections.
anyway, my last message was actually directed at the 'fake ip address' part only. my fault for not putting a quote earlier.. 